Manualshelf

Quick Reference Guide

ManualsBrandsNetgear ManualsPC ComponentsNetgear FVS338
919293949596979899100
5-1
v1.0, January 2010
Chapter 5
Virtual Private Networking
This chapter describes how to use the Virtual Private Networking (VPN) features of the ProSafe
VPN Firewall 50 FVS338. This chapter includes the following sections:
“Considerations for Dual WAN Port Systems” on this page
“Using the VPN Wizard for Client and Gateway Configurations” on page 5-2
“Testing the Connections and Viewing Status Information” on page 5-12
“Managing VPN Policies” on page 5-15
“Managing Certificates” on page 5-19
“Extended Authentication (XAUTH) Configuration” on page 5-26
“Assigning IP Addresses to Remote Users (ModeConfig)” on page 5-32
“Configuring Keepalives and Dead Peer Detection” on page 5-42
“Configuring NetBIOS Bridging with VPN” on page 5-44
Considerations for Dual WAN Port Systems
If both of the WAN ports of the VPN firewall are configured, you can enable Auto-Rollover mode
for increased system reliability. Selecting Auto-Rollover mode impacts how the VPN features
must be configured.
The use of fully qualified domain names in VPN policies is mandatory when the WAN ports are in
rollover mode.
The diagram and table below shows how the WAN mode selection relates to VPN configuration.
Figure 5-1
Rest of
Firewall
Functions
Firewall
WAN Port
Functions
Firewall
Rollover
Control
Firewall
WAN 1 Port
WAN 2 Port
Internet
Same FQDN required for both WAN ports
WAN Auto-Rollover: FQDN Required for VPN